OSINT/Physical Recon Add-on

DeepSeas offers OSINT/Physical Reconnaissance as an addon to our Advanced Adversary Simulation services. Tapping into the power of Open-Source Intelligence (OSINT), this service methodically gathers and analyzes publicly available information about your organization, ranging from digital footprints to real-world physical details. Complementing this digital investigation, our experts engage in on-the-ground physical reconnaissance to observe and evaluate the tangible security measures in place at your facilities. This dual-pronged approach uncovers potential vulnerabilities that might be exploited by adversaries both online and offline. When integrated with our Advanced Adversary Simulation services, the OSINT/Physical Reconnaissance add-on offers a multi-dimensional security evaluation, ensuring that your

organization is shielded from threats in the digital realm and the physical world.

The following steps are taken during an OSINT/Physical Reconnaissance engagement with DeepSeas, providing

a multi-faceted assessment ensuring organizations are well-equipped to defend against digital and real-world

threats:

1. Engagement Kick-off & Scope Definition
   1. Initiate a dialogue with the client to ascertain objectives and determine the specific targets for the OSINT and physical reconnaissance activities.
   2. Set boundaries, define the scope of investigation, and establish rules of engagement, ensuring all activities are ethically and legally sound.
2. Data Collection: Digital Sources
   1. Employ OSINT tools and methodologies to gather publicly available information from various online sources like social media, forums, websites, databases, and more.
   2. Monitor digital channels for mentions or leaks of sensitive information related to the organization.
3. Physical Survey Planning
   1. Based on the OSINT findings, strategize and plan the physical reconnaissance phase.
   2. Determine key areas of interest, potential entry points, and the schedule for on-site surveys, ensuring minimal disruption to daily operations.
4. On-site Physical Reconnaissance
   1. Conduct discreet on-ground observations of the organization's physical infrastructure and security measures.
   2. Document any visible vulnerabilities, such as lax security protocols, unprotected access points, or any other potential areas of exploitation.
5. Analysis & Correlation
   1. Correlate digital data with physical findings to understand potential risks better.
   2. Identify patterns or trends that may indicate broader vulnerabilities or security lapses.
6. Report Compilation
   1. Prepare a comprehensive report detailing all findings from the OSINT and physical reconnaissance phases.
   2. Highlight critical vulnerabilities, potential threats, and areas of concern.